juaromu / wazuh-misp

Related projects: ⓘ

• juaromu / wazuh-opencti
  ☆32Updated last year
• juaromu / wazuh-nmap
  ☆17Updated 2 years ago
• juaromu / wazuh-domain-stats-alienvault
  ☆13Updated 2 years ago
• crow1011 / wazuh2thehive
  Wazuh integration TheHive
  ☆30Updated last year
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆55Updated 5 months ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆37Updated 4 months ago
• austinsonger / Elastic-Security
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆17Updated 3 years ago
• dariommr / scripts
  Personal scripts
  ☆12Updated last week
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆34Updated 2 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆66Updated last year
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆60Updated 3 years ago
• jctello / JCT-Wazuh
  Tools for Wazuh by Juan C. Tello
  ☆14Updated 2 years ago
• juaromu / wazuh
  ☆17Updated 2 years ago
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆52Updated 4 years ago
• guardsight / gsvsoc_cybersecurity-incident-response-plan
  Cybersecurity Incident Response Plan
  ☆86Updated 3 years ago
• nobody-cares / Incident-Response-Plan
  Incident Response Plan for all major incidents including cheatsheets for both linux and windows
  ☆13Updated 4 years ago
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆68Updated 3 weeks ago
• OpenSecureCo / Wazuh
  ☆30Updated 2 years ago
• ReconInfoSec / graylog2thehive
  Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.
  ☆44Updated 4 years ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆22Updated 3 years ago
• weslambert / securityonion-misp
  ☆34Updated 3 years ago
• deepanshusood / SANS-Security-Policy-Templates
  SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…
  ☆28Updated 2 years ago
• PolitoInc / ELK-Hunting
  Threat Hunting with ELK Workshop (InfoSecWorld 2017)
  ☆64Updated 6 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 5 months ago
• SanWieb / sigWah
  A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
  ☆33Updated 4 years ago
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆83Updated 2 years ago
• sans-blue-team / sec530-wiki
  ☆51Updated 3 years ago
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆46Updated last week
• signorrayan / SplunkThreatHunting
  This repository contains Splunk queries to hunt some anomalies
  ☆38Updated 2 years ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆40Updated this week